General
-
Target
f8ecb8a1247e224ecb9029f6f2ceb705814af2b8f6ad84961881a1f948349b65
-
Size
203KB
-
Sample
221124-er5jzabe7t
-
MD5
62579d15d6d135c6cf000d0c29c2232e
-
SHA1
804122f30421ba399c1eb17d928794fd51812e71
-
SHA256
f8ecb8a1247e224ecb9029f6f2ceb705814af2b8f6ad84961881a1f948349b65
-
SHA512
939c55580cd8b5068eee567ad191c0646d349146064afd4df9e68c0c9d0bd8289720149146c9316ca459a2cadfeac4d2a26d17b98e8d0716a44b4c30985e8d67
-
SSDEEP
3072:h4URpNUUX6z/DBXJfWLXWLBOZMlarAxp8+HQBJMnTrEH2yDlH8A2KsZdQ/vQ5mTK:h4SUjhtWyLsZUQAnWP6RbQ/v0QuG4QM
Malware Config
Targets
-
-
Target
f8ecb8a1247e224ecb9029f6f2ceb705814af2b8f6ad84961881a1f948349b65
-
Size
203KB
-
MD5
62579d15d6d135c6cf000d0c29c2232e
-
SHA1
804122f30421ba399c1eb17d928794fd51812e71
-
SHA256
f8ecb8a1247e224ecb9029f6f2ceb705814af2b8f6ad84961881a1f948349b65
-
SHA512
939c55580cd8b5068eee567ad191c0646d349146064afd4df9e68c0c9d0bd8289720149146c9316ca459a2cadfeac4d2a26d17b98e8d0716a44b4c30985e8d67
-
SSDEEP
3072:h4URpNUUX6z/DBXJfWLXWLBOZMlarAxp8+HQBJMnTrEH2yDlH8A2KsZdQ/vQ5mTK:h4SUjhtWyLsZUQAnWP6RbQ/v0QuG4QM
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks for any installed AV software in registry
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-